charlie miller

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

iPhone executes SMS binary code as root

A security flaw has been discovered in the iPhone OS that could allow attackers to gain root access to the iPhone OS and allow them to install and execute malicious programs at will. Charlie Miller announced the discovery of the vulnerability during a presentation at the SyScan...

Tags: Apple iPhone, SMS, Attack, Charlie Miller, DailyTech, Text Messaging/SMS/MMS, Telephony, Cellular Phones, Smart Phones, Security, Consumer Electronics, Personal Technology, Online Communications, Networking, Jason D. O'Grady

Blog posts 2009-07-02

Charlie Miller: Macs lacking in security

Charlie Miller: Macs lacking in securityWhat do professional hackers know about hacking?Miller brings up the tired marketshare defense but seriously, what does a professional hacker know about hacking? [b]NOTHING!![/b] I'd much rather believe people like frgough who, in his professional expertise, tell us that marketshare isn't what keeps OS X...

Tags: Desktops, Hacking, Apple Macintosh, Charlie Miller, security, Miller

Discussion threads 2009-03-25

Hackers steer clear of Google Chrome, say too challenging

At the CanSecWest security conference in Vancouver BC, hackers were invited to find and exploit holes in modern browsers. A popular target for hackers at this year's conference was Safari on a Mac -- definitely the lowest hanging fruit. Charlie Miller explains that it's not whether...

Tags: Google Inc., Google Chrome, Hacker, Sandbox, Charlie Miller, Hacking, Security, Garett Rogers

Blog posts 2009-03-23

The browser battle: Where does security fit in the evaluation process?

With the launch of Internet Explorer 8 as the latest volley in the browser wars---IE vs. Firefox vs. Google Chrome vs. Apple's Safari---there's a lot of talk about speed, browsing improvements and rendering engines. Where does security fit into the equation? Frankly, when I'm evaluating browsers---I use...

Tags: Mozilla Firefox, Apple Safari, Microsoft Internet Explorer, Web Browser, Google Chrome, Charlie Miller, Chris Duckett, Web Browsers, Security, Internet, Larry Dignan

Blog posts 2009-03-20

Questions for Pwn2Own hacker Charlie Miller

Questions for Pwn2Own hacker Charlie MillerWindows makes it harder to exploit holes THAT'S DAMN TRUE"It's really simple. Safari on the Mac is easier to exploit. The things that Windows do to make it harder for exploit to work, Macs don't do. Hacking into Macs is so much easier....

Tags: Hacking, Operating systems, SECURITY, Pwn2Own hacker, Charlie Miller, Pwn2Own, Apple Safari, hacker, Apple Mac OS X, risk, Microsoft Windows

Discussion threads 2009-03-19

Android exploit so dangerous, users warned to avoid phone's web browser

At the Schmoocon hacker conference in Washington D.C. this weekend, security researcher Charlie Miller noted a new vulnerability in Google Android that allows hackers to remotely take control of the phone's web browser and related processes, ReadWriteWeb reports. If a phone becomes compromised, hackers can gain access...

Tags: Google Inc., Google Android, Phone, Packetvideo, T-Mobile, Web Browser, Charlie Miller, Media Library, Web Browsers, Security, Internet, Andrew Nusca

Blog posts 2009-02-12

MacBook Air falls in two minutes at PWN 2 OWN

The MacBook Air fell in two minutes at the CanSecWest security conference's PWN 2 OWN. According to Infoworld, Charlie Miller won the $10,000 prize. Under the contest rules, organizers offered Sony Vaio, Fujitsu U810, and the MacBook as prizes. On day 1 no one won because they...

Tags: Apple Safari, Vulnerability, Apple MacBook, Apple Inc., Charlie Miller, Zero Day Initiative, Notebooks, Hardware, Notebooks & Tablets, Larry Dignan

Blog posts 2008-03-27

Compare! 1.0 (Mac)

Compare! is a program which will allow you to take two different music files anything Quicktime can play, and will play one out one ear, and one out the other ear, in order to let the user compare the two files' quality. The user can change the balance to hear...

Tags: Apple Macintosh, Ear, Charlie Miller, Digital Music, Digital Media, Desktops, Personal Technology, Consumer Electronics, Hardware

Software downloads 2003-10-22

Additional Resources

Worm inflicts Rick Astley wallpaper on jailbroken iPhones

But... but... but... OS X is Unix! It is immune!Hmm, guess not.Now, let's list the "attacks" and then cue the double standards...1. iPhone must have the [b]worst[/b] security model out there because hackers only go after the low hanging fruit.2. I don't care [b]why[/b] no one attacks Windows Mobile, all...

Tags: Smart phones, NonZealot, Apple iPhone, security

Discussion threads 2009-11-08

News to know: Scareware; HP; SAP; Cloud computing

Here are today’s notable headlines. You can get News To Know via email alert and RSS daily. For continuous updates see BNET’s around-the-Web tech coverage. Dancho Danchev: The ultimate guide to scareware protection Gallery: The ultimate guide to scareware protection 9/11...

Tags: Hewlett-Packard Co., Andrew Nusca, SAP AG, Microsoft Corp., Cloud Computing, Virtualization, Netbooks, Nettops & MIDs, Hardware, Larry Dignan

Blog posts 2009-09-14

Apple warns of Mac attack risk via image files

Apple warns of Mac attack risk via image filesWow, lots of critical vulnerabilities in there!!I can't believe how many of these bugs allow for arbitrary code execution! Viewing an image file shouldn't result in arbitrary code execution.Oh well, at least they were fixed within nano seconds of the vulnerability popping...

Tags: Desktops, SECURITY, Patches, Apple Macintosh, Mac Attack, Apple Inc., vulnerability

Discussion threads 2009-08-05

iPhone OS 3.0.1 jailbreak, unlock and tether-able

Apple's freshly-released iPhone OS 3.0.1 update fixes a bug that allows arbitrary code execution via SMS messages. The bug, exposed by Charlie Miller and Collin Mulliner at last week's Blackhat conference is particularly nasty because it allows a hacker to root an iPhone via a series of text messages --...

Tags: Apple iPhone, Smart Phones, Consumer Electronics, Personal Technology, Jason D. O'Grady

Blog posts 2009-08-03

Apple patches Black Hat SMS attack flaw

On the heels of a Black Hat conference demo of an iPhone hijack via text messages, Apple has shipped an iPhone update with patches for the security flaw. The iPhone OS 3.0.1 update, available only via iTunes, addresses a memory corruption issue in the way the device...

Tags: Phone, Flaw, Apple Inc., SMS, Text Messaging/SMS/MMS, Telephony, Cellular Phones, Consumer Electronics, Personal Technology, Online Communications, Networking, Ryan Naraine

Blog posts 2009-08-03

Apple patches iPhone SMS flaw

Apple has plugged an SMS flaw that would enable an attacker to take complete control over an iPhone. Researchers Charlie Miller and Collin Mulliner said at the Black Hat security conference that an attacker could use the SMS exploit to make calls, swipe data and send text...

Tags: Apple iPhone, Flaw, Apple Inc., SMS, Text Messaging/SMS/MMS, Telephony, Cellular Phones, Consumer Electronics, Personal Technology, Online Communications, Networking, Larry Dignan

Blog posts 2009-07-31

iPhone executes SMS binary code as root

iPhone executes SMS binary code as rootNo, iPhone is NOT UNIX basedWe all know that OS X [b]is[/b] UNIX certified.We also know that iPhone OS [b]is[/b] OS X.Therefore, iPhone OS isn't just UNIX based, it [b]is[/b] UNIX.Therefore, it is immune to all malware.At least I think that is how the...

Tags: Text messaging/SMS/MMS, Telephony, Smart phones, Operating systems, Apple iPhone, Apple Inc., Unix, SMS, binary code, iPhone OS, Miller

Discussion threads 2009-07-02

Google Chrome for Mac: Still not ready

Google Chrome for Mac: Still not readyThe wait goes on...Lots of Mac users are waiting for this. You would think that with Sergey driving this, it would go faster. Hmm. Well, I guess we'll see how close they get it to a "native Mac app" when it finally comes out....

Tags: Operating systems, Desktops, Apple Mac OS X, Apple Macintosh, Google Inc., Google Chrome

Discussion threads 2009-06-02

Apple plugs gaping QuickTime security holes

Apple plugs gaping QuickTime security holesThis is clearly Microsofts problemThey should never have bailed out Apple.Good thing....OSX is not Susceptible. Only Windows users should update. No one in the world could ever use these against a Mac, its just impossible. RE: Apple plugs gaping QuickTime security holesWhere's...

Tags: Apple Mac OS X, Digital music, Digital media, Java, security, OSX, Apple Inc., Apple QuickTime

Discussion threads 2009-06-01

Hacker claims to have phished Steve Jobs Amazon account

Hacker claims to have phished Steve Jobs Amazon accountHacker claims to have phished Steve Jobs Amazon accountClassicRE: Hacker claims to have phished Steve Jobs Amazon accountOh, yeah, classic alright, classic BS.First of all, this guy has offered no unrefutable proof of his claims. Could all be BS.Second, even if...

Tags: Hacking, Apple Mac OS X, Operating systems, Cyberthreats, Steve Jobs, Amazon.com Inc., hacker, Apple Inc., Apple Safari, operating system, security

Discussion threads 2009-05-15

Apple eliminates CanSecWest Pwn2Own flaws

Here's a little ditty that was almost lost in the sheer volume of this week's Mac OS X security update: Apple has finally patched the two vulnerabilities used to win this year's CanSecWest Pwn2Own hacking contest. The two flaws were used by Charlie Miller and a German...

Tags: Apple Safari, Flaw, Vulnerability, Apple Inc., Hacker, Hacking, Security, Ryan Naraine

Blog posts 2009-05-14

Macs in the enterprise: The security conundrum

Macs in the enterprise: The security conundrumWhat's the big deal here now?You bring in, Linux to the mix, & resolve the ISSUES.Apr 2009, Conficker infects 700 PCs in U of Utah, Macs not affected. AP:"University health sciences spokesman Chris Nelson said the outbreak of the Conficker worm, which can slow...

Tags: Desktops, Cyberthreats, security, Apples OSX, OSX, Apple Macintosh, Apple Inc., virus, vulnerability

Discussion threads 2009-04-27